Open dependabot[bot] opened 3 months ago
New and removed dependencies detected. Learn more about Socket for GitHub ↗︎
Package | New capabilities | Transitives | Size | Publisher |
---|---|---|---|---|
npm/any-promise@1.3.0 | None | 0 |
22.2 kB | kevinbeaty |
npm/cli-table3@0.6.5 | None | 0 |
46.2 kB | speedytwenty |
npm/convert-hrtime@5.0.0 | None | 0 |
3.33 kB | sindresorhus |
npm/highlight.js@10.7.3 | None | 0 |
1.71 MB | highlightjs_bot |
npm/marked@12.0.2 | None | 0 |
924 kB | tonybrix |
🚮 Removed packages: npm/cli-table3@0.6.3, npm/esprima@4.0.1, npm/marked@9.1.6, npm/mimic-fn@2.1.0, npm/min-indent@1.0.1, npm/minimatch@3.1.2, npm/minimist-options@4.1.0, npm/minimist@1.2.7, npm/minipass@7.0.4
Bumps semantic-release from 22.0.12 to 23.1.1.
Release notes
Sourced from semantic-release's releases.
... (truncated)
Commits
73bcd0b
fix(deps): update dependency execa to v9 (#3296)39a421d
ci(action): update actions/checkout action to v4.1.5 (#3295)663fccd
ci(action): update ossf/scorecard-action action to v2.3.3 (#3298)3a18bf8
Merge pull request #3300 from semantic-release/beta81cdc49
ci(action): update github/codeql-action action to v3.25.4 (#3294)95d8736
feat: add main branch to default release branch config (#1737)ba76cbb
chore(deps): update dependency sinon to v17.0.2 (#3293)3c80615
docs(configuration): add micromatch note for branches configuration key (#3287)f3ac97b
docs: Remove non-existing plugin from plugins-list.md (#3291)e3a3a38
chore(deps): lock file maintenance (#3289)Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase
.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot show